CVE-2020-10286
9.4
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H
Summary
the main user account has restricted privileges but is in the sudoers group and there is not any mechanism in place to prevent sudo su or sudo -i to be run gaining unrestricted access to sensible files, encryption, or issue orders that disrupt robot operation.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| uFactory | xArm 5 Lite, xArm 6 and xArm 7 | v1.5.0 and before | affected |
Weaknesses
- CWE-656: CWE-656
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.